Someone tries to reset admin user password in app

Hi guys,
we have a strange behavior noticed in backendless:

Within seconds a person / machine tried to reset a useraccounts password. The account is an admin user (in our app) and the email should not be known to anyone outside our (small) company.

I have no idea how this can happen but are you 100% sure that no data was leaked from the recent attack on you EU server?

Or do you have any other ideas where this can come from?

Hi.

I have no idea how this can happen but are you 100% sure that no data was leaked from the recent attack on you EU server?

This is very, very unlikely. The domain of attack was the ESXi itself. Our services (particularly the DB) left untouched. I mean they were damaged in some cases, but they were restored from scratch using the backup.